» fiat stilo - visteon dekoder.exe
Overview
Analysis
File Details
Downloads (1)

fiat stilo - visteon dekoder.exe

The application fiat stilo - visteon dekoder.exe has been detected as a potentially unwanted program by 7 anti-malware scanners. This is a setup program which is used to install the application. It uses the InstallCore engine which may bundle additional software offers including toolbars and browser extensions. The file has been seen being downloaded from download1242.mediafire.com.

File name:

MD5:

4d66eb6cc5cc074b27eb56342d6a0072

SHA-1:

3a2a07cee528778dde4f1bb2c856b4141b022094

SHA-256:

605b93ab3c8f5e16e2ae6bce0d9c52dd1e85a7c3ae3bf87c8de03d4b0789adc0

Scanner detections:

7 / 68

Status:

Potentially unwanted

Explanation:

Uses the InstallCore download manager to install additional potentially unwanted software which may include extensions such as DealPly and various toolbars.

Analysis date:

11/27/2024 2:57:25 AM UTC (today)

Scan engine

Detection

Engine version

AVG

BackDoor.Generic13

2017.0.2827

Clam AntiVirus

Win.Trojan.Banito-528

0.98/21511

Dr.Web

Adware.InstallCore.53

9.0.1.052

McAfee

Artemis!4D66EB6CC5CC

5600.6483

NANO AntiVirus

Trojan.Win32.Banito.dcnmv

0.30.26.4751

Vba32 AntiVirus

suspected of Trojan.Delf.33

3.12.26.4

Zillya! Antivirus

Backdoor.Banito.Win32.631

2.0.0.2520

File size:

487 KB (498,688 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\fiat stilo - visteon dekoder.exe

File PE Metadata

Compilation timestamp:

6/20/1992 12:22:17 AM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

12288:kVKe3KOnu/Za/4V1TXHrR4PzcJccCLoe2PO2CjBMszjEN:k4e3huZzV1TbRiVX/lM9N

Entry address:

0x52C7C

Entry point:

55, 8B, EC, 83, C4, F0, B8, 0C, 2B, 45, 00, E8, EC, 38, FB, FF, A1, 20, 3E, 45, 00, 8B, 00, E8, E0, BE, FF, FF, 8B, 0D, F4, 3E, 45, 00, A1, 20, 3E, 45, 00, 8B, 00, 8B, 15, 64, 00, 45, 00, E8, E0, BE, FF, FF, A1, 20, 3E, 45, 00, 8B, 00, E8, 54, BF, FF, FF, E8, 5B, 14, FB, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

327.5 KB (335,360 bytes)

The file fiat stilo - visteon dekoder.exe has been seen being distributed by the following URL.

http://download1242.mediafire.com/fyij1l95o6xg/.../Fiat Stilo - Visteon dekoder.exe

Remove fiat stilo - visteon dekoder.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.